<?php

/**
 * UserIdentity represents the data needed to identity a user.
 * It contains the authentication method that checks if the provided
 * data can identity the user.
 */
Yii::import('application.modules.user.models.User');
Yii::import('application.extensions.core.auth.WebUser');

class UserIdentity extends CUserIdentity {

    /**
     * Authenticates a user.
     * The example implementation makes sure if the username and password
     * are both 'demo'.
     * In practical applications, this should be changed to authenticate
     * against some persistent user identity storage (e.g. database).
     * @return boolean whether authentication succeeds.
     */
    private $_id;
    
    public function authenticate() {
        $user = User::model()->findByAttributes(array('username' => $this->username));
        
        if ($user === null) { // No user found!
            $this->errorCode = self::ERROR_USERNAME_INVALID;
        } else if ($user->password !== md5(md5($this->password, $user->username))) { // Invalid password!
            $this->errorCode = self::ERROR_PASSWORD_INVALID;
        } else { // Okay!
            $this->errorCode = self::ERROR_NONE;
            // Store the role in a session:
            $this->_id = $user->userid;
            $this->setState('id', $user->userid);
        }
        return !$this->errorCode;
    }
    
    public function modifiedAuth(){
        $user = User::model()->findByAttributes(array('username' => $this->username));
        
        if ($user === null) { // No user found!
            $this->errorCode = self::ERROR_USERNAME_INVALID;
        } else if ($user->password !== (md5($this->password, $user->username))) { // Invalid password!
            $this->errorCode = self::ERROR_PASSWORD_INVALID;
        } else { // Okay!
            $this->errorCode = self::ERROR_NONE;
            // Store the role in a session:
            $this->_id = $user->userid;
            $this->setState('id', $user->userid);
        }
        return !$this->errorCode;
    }
    
    public function getId() {
        return $this->_id;
    }
    
}